Commit 54348201 authored by Nick Mathewson's avatar Nick Mathewson 🏃
Browse files

Merge remote-tracking branch 'intrigeri/bug12939-systemd-no-new-privileges'

Conflicts:
	contrib/dist/tor.service.in
parents f58cdb3b a8dd279f
o Distribution:
- systemd unit file: ensures that the process and all its children
can never gain new privileges.
Patch by intrigeri; resolves ticket 12939.
...@@ -22,6 +22,7 @@ InaccessibleDirectories = /home ...@@ -22,6 +22,7 @@ InaccessibleDirectories = /home
ReadOnlyDirectories = / ReadOnlyDirectories = /
ReadWriteDirectories = @LOCALSTATEDIR@/lib/tor ReadWriteDirectories = @LOCALSTATEDIR@/lib/tor
ReadWriteDirectories = @LOCALSTATEDIR@/log/tor ReadWriteDirectories = @LOCALSTATEDIR@/log/tor
NoNewPrivileges = yes
[Install] [Install]
WantedBy = multi-user.target WantedBy = multi-user.target
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment